B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
cvefeed.io
RISK: Mittel (3.1)

CVE-2026-11800 - Org.keycloak:keycloak-services: keycloak: authentication bypass via jwt algorithm confusion

CVE ID :CVE-2026-11800 Published : June 25, 2026, 8:57 p.m. | 2 hours, 14 minutes ago Description :A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow allows an attacker with valid client credentials to bypass signature verification. By...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2025-71340 - picklescan - Remote Code Execution via idlelib.pyshell.ModifiedInterpreter.runcode

2026-06-25 Mittel

CVE-2025-71338 - Flowise - Arbitrary File Write to Remote Code Execution via document-store API

2026-06-25 Mittel

CVE-2025-71335 - Flowise - Session Invalidation Failure After Password Change

2026-06-25 Mittel

CVE-2025-71336 - Flowise - Unsandboxed Remote Code Execution via Custom MCP

2026-06-25 Mittel

CVE-2025-71334 - Flowise - Arbitrary File Access via Missing Chat Flow ID Validation

2026-06-25 Mittel

CVE-2025-71328 - Flowise - Unverified Password Change via Account Settings

2026-06-25 Mittel